2 matches found
OpenText Extended ECM 22.3 Java Frontend Remote Code Execution Vulnerability
======================================================================= title: Pre-authenticated Remote Code Execution via Java frontend and QDS endpoint product: OpenText™ Content Server component of OpenText™ Extended ECM vulnerable version: 20.4 - 22.3 fixed version: 22.4 CVE number:...
CVE-2022-45927
OpenText Content Suite Platform 22.1 (16.2.19.1803) contains a flaw in the Java application server that can bypass authentication for the Content Server QDS endpoints, allowing creation of objects and arbitrary code execution. The issue is described as pre-auth remote code execution with high imp...